Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/v9Ac9k5qGViZ__IZYkjGeSHuuGU.roa
File: v9Ac9k5qGViZ__IZYkjGeSHuuGU.roa (raw, json)
Hash identifier: YoZH3JGPeJQLx2/DYDFRDxAjSWLRfPwAlovs27Ei2yg=
Subject key identifier: BF:D0:1C:F6:4E:6A:19:58:99:FF:F2:19:62:48:C6:79:21:EE:B8:65
Certificate issuer: /CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Certificate serial: 0293D9
Authority key identifier: 36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/v9Ac9k5qGViZ__IZYkjGeSHuuGU.roa
Signing time: Tue 21 Jun 2022 13:23:45 +0000
ROA not before: Tue 21 Jun 2022 13:23:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207080
IP address blocks: 2a0c:2f06::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168921 (0x293d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3691d2950145dceac00c0ca4eb536d92867b38d3
Validity
Not Before: Jun 21 13:23:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfd01cf64e6a195899fff2196248c67921eeb865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:84:d0:a9:62:7d:99:9b:bd:42:5b:23:0c:38:
8b:cb:31:5b:cb:a9:a8:bc:80:09:94:95:7e:58:e8:
1f:85:f0:00:19:e4:1c:1e:cf:c6:a9:03:ae:b3:33:
3a:12:f9:80:7c:ef:28:56:00:b0:b9:41:80:ec:52:
65:fc:75:16:da:d4:0e:4c:f2:c1:9d:0e:90:6c:f7:
86:48:7f:b1:bd:6c:28:50:75:a2:7b:65:e1:f3:ab:
41:d8:06:89:d4:43:24:1b:36:39:85:54:31:c3:e0:
8f:e4:a0:5d:98:82:3f:3a:6c:c6:56:f6:94:9a:7e:
fb:d9:4b:e8:b2:a4:9f:39:88:19:de:24:4c:aa:3e:
7b:63:27:93:7a:54:ad:63:6a:45:9e:81:20:49:51:
3d:d2:19:93:ce:2a:48:64:14:fa:a6:c4:e9:96:9b:
5f:37:f9:a1:f2:7d:50:4a:17:7d:de:95:0b:89:cf:
79:b9:1e:c5:2c:0d:12:53:42:52:2c:2f:a2:4c:37:
eb:68:26:b3:e3:fd:b0:9d:99:63:2d:73:58:d5:f7:
d4:1e:4b:96:aa:f8:96:e6:b8:d4:d3:80:d7:7c:70:
f2:dc:62:bc:a2:32:b2:c1:d7:d9:b6:d6:79:db:6e:
e1:e6:1e:4a:48:64:15:87:c2:38:e9:38:75:b9:04:
db:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D0:1C:F6:4E:6A:19:58:99:FF:F2:19:62:48:C6:79:21:EE:B8:65
X509v3 Authority Key Identifier:
keyid:36:91:D2:95:01:45:DC:EA:C0:0C:0C:A4:EB:53:6D:92:86:7B:38:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpHSlQFF3OrADAyk61NtkoZ7ONM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/v9Ac9k5qGViZ__IZYkjGeSHuuGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2a942a-f1bf-43e2-b92a-1dec40584806/1/NpHSlQFF3OrADAyk61NtkoZ7ONM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:2f06::/32
Signature Algorithm: sha256WithRSAEncryption
18:a6:47:54:bf:fe:ec:44:89:83:f8:44:f3:2e:54:28:ab:30:
9f:e2:68:51:3d:90:be:68:15:82:5e:09:a0:10:a0:1c:fa:de:
09:41:b5:14:b9:78:ca:5f:1d:c6:f1:e9:21:04:a1:d4:37:80:
b6:8b:03:a2:32:0f:e0:47:18:99:86:51:07:53:5e:b2:20:fa:
c1:c1:a2:d7:ea:4b:ec:7b:a0:51:06:3c:ab:ff:26:44:b1:18:
87:ec:c3:c4:39:9e:74:89:7c:95:ed:1d:6c:21:a1:7a:24:60:
01:b5:29:e4:0b:fa:bc:28:a8:c3:0c:12:a3:f6:66:60:e6:89:
d7:3f:c3:56:86:27:de:90:50:0a:97:97:ce:35:e8:c2:3a:c9:
0e:00:3a:58:9f:7a:ce:24:73:87:bf:60:3d:36:58:1f:1d:5c:
c8:6d:55:dc:7c:23:9e:76:f2:bb:f5:6f:86:68:ee:7b:cc:0b:
bc:cc:92:4e:74:d6:1a:94:2e:1d:a5:4e:cc:6c:8f:f8:60:ed:
ce:1c:16:bd:54:af:e9:ba:38:70:7b:bd:3a:ca:d5:61:23:38:
73:17:14:a6:d2:19:86:aa:d6:06:ce:a9:6b:27:d7:66:e2:35:
d8:82:8d:d3:11:43:3a:c4:f4:07:a4:08:2b:e3:ca:a0:f0:b3:
5f:ed:3c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:51 2023 by rpki-client on console-fra.rpki-client.org